CVE-2017-18124
26.10.2018, 13:29
During secure boot, addition is performed on uint8 ptrs which led to overflow issue in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version FSM9055, IPQ4019, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDX20Enginsight
| Vendor | Product | Version |
|---|---|---|
| qualcomm | fsm9055_firmware | - |
| qualcomm | ipq4019_firmware | - |
| qualcomm | mdm9206_firmware | - |
| qualcomm | mdm9607_firmware | - |
| qualcomm | mdm9625_firmware | - |
| qualcomm | mdm9635m_firmware | - |
| qualcomm | mdm9640_firmware | - |
| qualcomm | mdm9645_firmware | - |
| qualcomm | mdm9650_firmware | - |
| qualcomm | mdm9655_firmware | - |
| qualcomm | msm8909w_firmware | - |
| qualcomm | msm8996au_firmware | - |
| qualcomm | sd_210_firmware | - |
| qualcomm | sd_212_firmware | - |
| qualcomm | sd_205_firmware | - |
| qualcomm | sd_410_firmware | - |
| qualcomm | sd_412_firmware | - |
| qualcomm | sd_425_firmware | - |
| qualcomm | sd_430_firmware | - |
| qualcomm | sd_450_firmware | - |
| qualcomm | sd_615_firmware | - |
| qualcomm | sd_616_firmware | - |
| qualcomm | sd_415_firmware | - |
| qualcomm | sd_617_firmware | - |
| qualcomm | sd_625_firmware | - |
| qualcomm | sd_650_firmware | - |
| qualcomm | sd_652_firmware | - |
| qualcomm | sd_800_firmware | - |
| qualcomm | sd_810_firmware | - |
| qualcomm | sd_820_firmware | - |
| qualcomm | sd_820a_firmware | - |
| qualcomm | sd_835_firmware | - |
| qualcomm | sd_845_firmware | - |
| qualcomm | sd_850_firmware | - |
| qualcomm | sda660_firmware | - |
| qualcomm | sdx20_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration